Effective Date: 2023-11-04
Griffin Risk (“we,” “us,” or “our”) is committed to protecting the privacy of our website visitors and users (“you” or “your”). This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you use our website, [insert website address] (the “Site”).
This Privacy Policy complies with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant U.S. privacy laws.
1. Information We Collect
We may collect the following types of information:
Personal Information: Information that identifies you, such as your name, email address, postal address, phone number, IP address, and online identifiers.
Non-Personal Information: Information that does not identify you, such as your browser type, operating system, and website usage data.
2. How We Collect Information
We collect information through:
Information You Provide: Information you submit when filling out forms on our Site, contacting us, subscribing to our newsletters, or creating an account.
Automatic Collection: Information gathered through cookies, web beacons, and other tracking technologies about your browsing activities on our Site.
3. How We Use Your Information
We may use your information for:
Providing and Improving Services: Operating our Site, responding to inquiries, and offering customer support.
Personalizing Your Experience: Tailoring the content and advertisements you see on our Site.
Communication: Sending newsletters, marketing materials, and other updates.
Compliance: Fulfilling legal obligations as required by applicable laws and regulations.
4. Legal Basis for Processing (GDPR)
Under the GDPR, we rely on the following lawful bases for processing personal information:
Consent: For example, when you opt to receive our newsletter,
Contractual Necessity: To fulfill our contract with you, such as providing the services requested.
Legitimate Interests: To improve our Site and services, as long as these interests do not infringe upon your fundamental rights and freedoms.
Legal Obligation: To comply with applicable laws and regulations.
5. Your Rights under GDPR
Under the GDPR, you have the following rights:
Right of Access: Request access to your personal information.
Right to Rectification:** Correct any inaccuracies or incomplete information.
Right to Erasure: Request deletion of your personal information in certain circumstances.
Right to Restrict Processing: Restrict the processing of your information in certain situations.
Right to Data Portability: Receive a copy of your information in a structured, commonly used format.
Right to Object: Object to processing your personal information in certain cases.
6. Your Rights under CCPA
For California residents, the CCPA grants the following rights:
Right to Know: Request details on the categories and specific personal information collected, the sources, purposes for collection, and the categories of third parties with whom we share it.
Right to Delete: Request deletion of your personal information, subject to certain exceptions.
Right to Opt-Out of Sale: You can opt out of the sale of your personal information (we do not currently sell personal information, but if this changes, we will provide opt-out options).
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
7. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. Retention periods may vary depending on the nature of the data and legal requirements.
8. Data Security
We employ appropriate technical and organizational measures to protect your personal information against unauthorized access, disclosure, alteration, and destruction. These measures include encryption, access control protocols, and periodic security audits to protect data.
9. International Data Transfers
If we transfer your personal information outside the European Economic Area (EEA) or the United States, we ensure that adequate safeguards are in place to protect your data, such as standard contractual clauses approved by the European Commission or compliance with recognized frameworks like the Privacy Shield (for transfers to the U.S.).
10. Third-Party Processors and Links
We may use third-party service providers to help operate our Site or conduct our business. These providers only process personal information on our behalf and are contractually obligated to protect it.
Our Site may contain links to third-party websites. We are not responsible for the privacy practices of these websites and encourage you to review their privacy policies before providing personal information.
11. Children’s Privacy
Our Site is not intended for individuals under 16 years old. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us to remove this information.
12. Changes to this Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will post updates on our Site and indicate the effective date of the changes. We encourage you to review this Privacy Policy regularly.
13. Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact us at [email protected]